On Nov 9, 2017 version 1.1 of this add-on was released to address an exploitable SQL injection vulnerability. If you are still using a version of this add-on which is below 1.1 or released before Nov 9, 2017 then it is essential that you update to the latest version of the add-on as soon as possible to fix this security issue. If you have any further questions, please ask.